Follow us on Twitter!
Hacking isn't just Computers & Exploits. It's a Philosophy. - Mr_Cheese
Monday, April 27, 2015
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 29
Guests Online: 27
TeamSpeak Online : 5 Members Online: 2

Registered Members: 88075
Newest Member: liuyunnote
Latest Articles
Our sponsor needs your help!


One of our sponsors needs your help, http://www.virginmediabusiness.co.uk/pitch-to-rich/grow/krystal-hosting/
Go check out their video and Don't forget to vote !


~ Thanks for your help
HBH
View Thread

HellBound Hackers | Computer General | Webmasters Lounge

Author

Hey HBH need a good guide

Mb0742
Member



Posts: 198
Location:
Joined: 26.11.07
Rank:
Apprentice
Posted on 13-11-11 13:06
Anybody got a decent tutorial on building a secure file upload page in php? (Can't do https). Namely preventing some dickhead uploading a 20 gb file etc.

Bit tough being a member on this site and setting out to do something like this following your typical online guides.

On a totally irrelevant point: is anybody else considering buying a plus membership just so they can see the site upgrade?


Mb

Edited by Mb0742 on 13-11-11 13:25
javascript:alert("hi")
Author

RE: Hey HBH need a good guide

Mb0742
Member



Posts: 198
Location:
Joined: 26.11.07
Rank:
Apprentice
Posted on 14-11-11 02:04
thanks, that was my main concern, however what about limiting to files, null byte etc.?


Mb
javascript:alert("hi")
Author

RE: Hey HBH need a good guide

spyware
Member



Posts: 4192
Location:
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 14-11-11 17:30
MoshBat wrote:
Type of file??? Check the file name


No! Check the file header! PHP and Unix-like system have some built-in functions to do this. File uploads are tricky though, especially if you're trying to account for fringe cases and attacks.



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
[center]�Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?� - Ebert[/ce